Tag: 2024-07-19

2 Attack Reports | 53 Vulnerabilities

Attack reports

HotPage: Story of a signed, vulnerable, ad-injecting driver

This report investigates a sophisticated Chinese browser injector called HotPage, capable of injecting code into remote processes and intercepting network traffic to modify requested web pages, redirect users, or open new tabs based on rules. Despite claims of being a security solution, HotPage lev…
2024-07-19
hotpage
sys driver
Published: July 19, 2024
Downloadable IOCs: 5

Warning Against the Distribution of Malware Disguised as Software Cracks

This advisory cautions about the distribution of malware masquerading as crack programs for software. The malicious actors aim to prevent the installation of V3 Lite, an anti-malware solution, by terminating its installation process. This tactic allows them to maintain persistence and continue upda…
malware
xmrig
coinminer
persistence
installer
2024-07-19
update
Published: July 19, 2024
Downloadable IOCs: 1
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-6205

9.8
    Payplus
  • Payplus Payment Gateway
Published: July 19, 2024

CVE-2024-6900

8.8
    Jkev
  • Record Managment System
Published: July 19, 2024

CVE-2024-6901

8.8
    Jkev
  • Record Managment System
Published: July 19, 2024

CVE-2024-6338

8.8
    Foliovision
  • Fv Flowplayer Video Player
Published: July 19, 2024

CVE-2024-6902

8.8
    Jkev
  • Record Managment System
Published: July 19, 2024

CVE-2024-6903

8.8
    Jkev
  • Record Managment System
Published: July 19, 2024

CVE-2024-41121

8.8
    Woodpecker CI/CD engine
Published: July 19, 2024

CVE-2024-39906

8.3
    Haven blog web application
Published: July 19, 2024

CVE-2024-21527

8.2
    github.com/gotenberg/gotenberg/v8/pkg/gotenberg
    github.com/gotenberg/gotenberg/v8/pkg/modules/chromium
    github.com/gotenberg/gotenberg/v8/pkg/modules/webhook
Published: July 19, 2024

CVE-2024-32007

7.5
    Apache
  • Cxf
Published: July 19, 2024

CVE-2024-41122

7.5
    Woodpecker CI/CD engine
Published: July 19, 2024

CVE-2024-6898

7.3
    SourceCodester Record Management System
Published: July 19, 2024

CVE-2024-37066

6.8
    Wyze V4 Pro
Published: July 19, 2024

CVE-2024-6899

6.3
    SourceCodester Record Management System
Published: July 19, 2024

CVE-2024-6904

6.3
    SourceCodester Record Management System
Published: July 19, 2024

CVE-2024-6905

6.3
    SourceCodester Record Management System
Published: July 19, 2024

CVE-2024-6906

6.3
    SourceCodester Record Management System
Published: July 19, 2024

CVE-2024-41124

6.3
    Puncia
Published: July 19, 2024

CVE-2024-38156

6.1
    Microsoft Edge (Chromium-based)
Published: July 19, 2024

CVE-2024-6916

5.9
    Zowe CLI
Published: July 19, 2024

CVE-2024-35198

5.7
    TorchServe
Published: July 19, 2024

CVE-2024-5977

5.4
    Givewp
  • Givewp
Published: July 19, 2024

CVE-2024-35199

4.7
    TorchServe
Published: July 19, 2024

CVE-2024-6799

4.3
    YITH Essential Kit for WooCommerce #1 plugin for WordPress
Published: July 19, 2024

CVE-2024-21583

4.1
    github.com/gitpod-io/gitpod/components/server/go/pkg/lib
    github.com/gitpod-io/gitpod/components/ws-proxy/pkg/proxy
    github.com/gitpod-io/gitpod/install/installer/pkg/components/auth
    github.com/gitpod-io/gitpod/install/installer/pkg/components/public-api-server
    github.com/gitpod-io/gitpod/install/installer/pkg/components/server
    @gitpod/gitpod-protocol
Published: July 19, 2024

CVE-2024-30130

3.7
    HCL Nomad server on Domino
Published: July 19, 2024

CVE-2024-6907

3.5
    SourceCodester Record Management System
Published: July 19, 2024

CVE-2023-7268

None
    ArtPlacer Widget WordPress plugin
Published: July 19, 2024

CVE-2023-7269

None
    ArtPlacer Widget WordPress plugin
Published: July 19, 2024

CVE-2024-5604

None
    Bug Library WordPress plugin
Published: July 19, 2024

CVE-2024-40724

None
    Assimp
Published: July 19, 2024

CVE-2024-29736

None
    Apache CXF
Published: July 19, 2024

CVE-2024-39457

None
    Cybozu Garoon
Published: July 19, 2024

CVE-2024-41172

None
    Apache CXF
Published: July 19, 2024

CVE-2024-41107

None
    CloudStack
Published: July 19, 2024

CVE-2024-0006

None
    Yugabyte Platform
Published: July 19, 2024

CVE-2024-27489

None
    WMCMS
Published: July 19, 2024

CVE-2024-39962

None
    D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router
Published: July 19, 2024

CVE-2024-39963

None
    Unknown
Published: July 19, 2024

CVE-2024-6895

None
    Yugabyte Platform
Published: July 19, 2024

CVE-2024-6908

None
    Yugabyte Platform
Published: July 19, 2024

CVE-2024-24970

None
    HP Display Control software component within the HP Application Enabling Software Driver
Published: July 19, 2024

CVE-2024-29080

None
    HP Application Enabling Software Driver
Published: July 19, 2024

CVE-2024-41281

None
    Linksys WRT54G
Published: July 19, 2024

CVE-2024-41492

None
    Tenda AX1806
Published: July 19, 2024

CVE-2024-41601

None
    lin-CMS
Published: July 19, 2024

CVE-2024-41602

None
    Spina CMS
Published: July 19, 2024

CVE-2024-41603

None
    Spina CMS
Published: July 19, 2024

CVE-2024-41600

None
    lin-CMS Springboot
Published: July 19, 2024

CVE-2024-40400

None
    Automad
Published: July 19, 2024

CVE-2024-39123

None
    janeczku Calibre-Web
Published: July 19, 2024

CVE-2024-41597

None
    ProcessWire
Published: July 19, 2024

CVE-2024-41599

None
    RuoYi
Published: July 19, 2024
Click here to see more Vulnerabilities